Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS924.roa
File: AS924.roa (raw, json)
Hash identifier: mvCtQ7dXJr/eWbHf1K10xlINbkV1X9S6xHZaMJ2BnZ0=
Subject key identifier: 36:0B:6A:FD:CD:C9:DF:C2:B0:F4:10:EF:1B:8E:99:D6:A2:3A:52:07
Certificate issuer: /CN=d12ea65dee9873b5dcf3c6c0224faea6fcb8aea6
Certificate serial: 712D1745C09E6B310EBF29DB9CCBF381048ECE7D
Authority key identifier: D1:2E:A6:5D:EE:98:73:B5:DC:F3:C6:C0:22:4F:AE:A6:FC:B8:AE:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0S6mXe6Yc7Xc88bAIk-upvy4rqY.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS924.roa
Signing time: Sun 01 Jan 2023 23:59:18 +0000
ROA not before: Sun 01 Jan 2023 23:54:18 +0000
ROA not after: Sun 31 Dec 2023 23:59:18 +0000
asID: 924
IP address blocks: 2a06:a005:d30::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:2d:17:45:c0:9e:6b:31:0e:bf:29:db:9c:cb:f3:81:04:8e:ce:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d12ea65dee9873b5dcf3c6c0224faea6fcb8aea6
Validity
Not Before: Jan 1 23:54:18 2023 GMT
Not After : Dec 31 23:59:18 2023 GMT
Subject: CN=360B6AFDCDC9DFC2B0F410EF1B8E99D6A23A5207
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:7d:43:42:85:a1:63:2b:67:2c:e9:54:44:96:
27:b4:17:63:da:11:d8:d3:f4:25:cc:c9:0d:bd:af:
d5:ab:68:26:8a:50:8f:f9:ad:72:ff:8f:ca:c2:ea:
45:8e:ab:1b:c7:97:7e:e8:66:4d:59:35:9b:0c:a3:
7d:f4:db:35:3f:73:63:3f:8a:0b:d2:c6:c3:25:0d:
a8:16:ff:cc:8b:f6:81:c2:0e:9d:7a:c3:00:06:9f:
6b:69:45:32:aa:0f:08:4f:f5:60:3d:5e:ef:0d:ed:
0c:b6:16:d8:59:e8:04:da:e0:3b:5f:c1:8b:03:c5:
fc:0e:e4:52:d1:be:1e:0c:6d:e4:38:8f:93:3b:72:
26:99:de:7c:ba:1f:20:24:04:9f:c7:17:c4:36:39:
a9:da:28:3d:f6:05:cd:73:92:d8:af:84:33:33:a1:
fc:f6:38:7c:0b:dd:eb:88:9d:ef:1b:2c:dc:54:30:
19:d8:bd:30:7c:00:4e:1c:b9:b3:f1:d0:ba:06:cb:
e1:c1:e2:84:b0:4a:07:ed:53:b4:c9:04:76:dd:2c:
88:d8:28:f9:92:da:93:d2:fd:67:eb:48:86:be:9f:
18:6d:00:11:01:b7:8d:f9:8d:bd:a0:8d:ae:70:f5:
26:a6:02:f1:ac:09:81:bb:9b:6c:41:2c:16:eb:40:
56:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:0B:6A:FD:CD:C9:DF:C2:B0:F4:10:EF:1B:8E:99:D6:A2:3A:52:07
X509v3 Authority Key Identifier:
keyid:D1:2E:A6:5D:EE:98:73:B5:DC:F3:C6:C0:22:4F:AE:A6:FC:B8:AE:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/D12EA65DEE9873B5DCF3C6C0224FAEA6FCB8AEA6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0S6mXe6Yc7Xc88bAIk-upvy4rqY.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f8e7d867-c35e-4e69-a815-ba1e9b336d62/2/AS924.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:d30::/44
Signature Algorithm: sha256WithRSAEncryption
71:ee:33:9e:43:fa:e8:b9:e7:e0:e3:34:b5:49:1c:b9:f3:2b:
71:b5:35:f8:47:95:21:c6:bd:bd:f1:0a:0d:a2:99:91:dd:cd:
ef:a9:5f:3a:88:97:53:ed:93:f4:f6:89:5b:33:a8:19:6a:ed:
68:65:84:0a:5a:29:99:e8:2f:82:79:b3:1c:db:cc:6b:4c:b1:
94:9d:ff:7e:41:e6:40:21:7e:6d:e5:5b:f2:bd:3e:b4:55:8e:
0d:09:44:68:8d:67:f7:32:db:1d:b7:e6:b9:87:49:6c:f0:0d:
93:c9:50:c5:a7:58:6f:a9:86:72:63:de:6e:1e:9c:eb:b3:ca:
26:f6:73:38:8c:e1:89:8a:6c:1b:b2:87:ec:48:b4:11:77:4e:
6e:a7:e1:ab:0c:ad:b1:3e:fa:17:2b:4b:4b:d4:23:6c:73:54:
09:05:7e:d4:0b:39:f9:14:b7:6c:88:80:5b:40:76:8c:65:54:
d4:97:a2:45:b7:9c:d6:93:67:f6:bb:0f:be:c0:10:12:b9:ba:
7e:88:af:24:94:42:a8:38:72:3b:1c:77:67:00:32:b2:c7:a7:
b2:9e:c4:7c:03:d2:c1:0a:27:89:d4:fc:17:41:b6:1d:0f:5e:
ac:14:b3:70:f8:83:c6:0c:54:86:70:3c:f5:1d:42:56:95:2e:
0d:6b:f4:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:09 2024 by rpki-client on console-ams.rpki-client.org